Denial of Service Vulnerability in SonicWall SMA1000 HTTP Extraweb Server
CVE-2020-5129

7.5HIGH

Key Information:

Vendor: Sonicwall
Status: Sma1000
Vendor: CVE Published:; 26 March 2020

What is CVE-2020-5129?

A vulnerability in the SonicWall SMA1000 HTTP Extraweb server permits an unauthenticated remote attacker to exploit the system, potentially causing it to crash and resulting in a denial of service. This vulnerability compromises the availability of the affected versions, particularly those prior to SMA1000 Version 12.1.0-06411, making it crucial for users to address and mitigate this risk.

Affected Version(s)

SMA1000 12.1.0-06411 and earlier

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 26, 2020
Vulnerability Reserved
Dec 31, 2019

Sonicwall

What is CVE-2020-5129?

Affected Version(s)

References

CVSS V3.1

Timeline